Synopsis: VoIP security news, WiFi phone vulnerabilities, comments, news, VOIPSEC review

Welcome to Blue Box: The VoIP Security Podcast show #11, a 39-minute podcast  from Dan York and Jonathan Zar around news and commentary in the world of VoIP security. This show also features an 18-minute interview with Steve Mank, COO of Qovia.

Download the show here (MP3, 39MB) or subscribe to the RSS feed to download the show automatically.

Comments, suggestions and feedback are welcome either as replies to this post  or via e-mail to blueboxpodcast@gmail.com.  Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows.  You may also call the listener comment line at +1-206-338-6654 to leave a comment there.

Note: Audio quality was a bit lower than previous shows and there was some echo.  We know – and more importantly we know how to fix it.  Future shows will be bettter.

Show Content:

• 00:20 – Intro to the show, contact information and how to provide comments.  Welcome to all the new listeners. , especially those Vermonters who joined as a result of 802Online posting. Mention of Frappr map for the show.  Please join the map! Mention that we are open to considering other contributors, either as "correspondents" or potentially as another co-host. Drop us an e-mail if you are interested in being considered!
• 02:46 – Upcoming events – Dan will be attending O’Reilly’s Emerging Telephony Conference in San Francisco January 24-26. If you are also planning to be there, please drop us an e-mail.  If anyone will be attending Internet Telephony happening at the same time in Florida, we would love some reports coming out of the show.  More details on the show blog.
• 03:38 – Comment section – comment from Shawn Merdinger about the AIO from Chandran at Sun
• 04:24 – Comment from Steve Blair that he’ll be attending the Internet Telephony conference
• 04:45 – Question from Craig Bowser about show notes and comment about VON Magazine
• 05:39 – Mention from ‘natas’ that he will be attending Shmoocon in Washington, DC next week (we mentioned this in show #10)
• 07:26 – News section – Network World: What will generate the real heat in ‘06?
• 08:35 – Call For Papers: Third Annual VoIP Security Workshop, Berlin, Germany, June 2006
• 09:16 – ABC News: DECT Phone bridges landline, VoIP
• 10:52 – Aswath Weblog: Optimized for Skype
• 12:36 – SECGURU:  VoIP Security Planning, Threats and Recommendations by Dan Sass
• 13:16 – Mention that there was an article (behind a gated web site) that seemed to imply a new VoIP white paper published by Internet Security Systems, but no mention could be found in other sources
• 13:53 – News release from PMC-Sierra about their new wired and WiFi phone reference platform that includes hardware security chips  (See also this story)
• 14:55 – ‘ResearchAndMarkets’ analyst firm releases VoIP Security report
• 15:48 – VoIP Magazine picks Borderware as one of the top 20 VoIP companies to watch (see also VoIP Magazine full "Top 20" list)
• 17:27 Feature interview with Steve Mank, COO, of Qovia, a company providing VoIP management tools and one of the first ones to use the term "SPIT" for "Spam for Internet Telephony"
  
  • 17:27 – history, overview of products, typical architecture
  • 25:50 – focus on security, DoS, encryption, rogue device detection
  • 29:15 – patents around SPIT prevention, techniques, DoS server solution, modularity
  • 32:00 – call logging/recording?, future directions, IP video
  • 33:00 – IP video equivalent of MOST score, go-to-market strategy, supported platforms, final thoughts
  • 35:39 – end of interview
• 36:01 – Review of the last week’s traffic on the VOIPSEC public mailing list. Major topics this week included continued discussion on Skype usefulness in the enterprise (resulted in Matthew Kaufmann posting about Amicima – a secure p2p VoIP company whose code is apparently open source ), VoIP attack statistics, and a call for papers for the Third Annual VoIP Security Workshop in Berlin June 1 and 2.
• 37:55 – Wrapup of the show:  upcoming shows, notes about contributing, information about how to provide comments.
• 39:35 – End of show

Comments, suggestions and feedback are welcome either as replies to this post  or via e-mail to blueboxpodcast@gmail.com.  Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows.  You may also call the listener comment line at +1-206-338-6654 to leave a comment there.

Download the show here (MP3, 38MB) or subscribe to the RSS feed to download the show automatically.

Thank you for listening and please do let us know what you think of the show.